The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session, NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-0169.
Monthly Archives: May 2016
CVE-2016-2108
The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service (buffer underflow and memory corruption) via an ANY field in crafted serialized data, aka the “negative zero” issue.
CVE-2016-2109
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding.
CVE-2016-2176
The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data.
DSA-3568 libtasn1-6 – security update
Pascal Cuoq and Miod Vallat discovered that Libtasn1, a library to
manage ASN.1 structures, does not correctly handle certain malformed DER
certificates. A remote attacker can take advantage of this flaw to cause
an application using the Libtasn1 library to hang, resulting in a denial
of service.
DSA-3569 openafs – security update
Two vulnerabilities were discovered in openafs, an implementation of the
distributed filesystem AFS. The Common Vulnerabilities and Exposures
project identifies the following problems:
DSA-3570 mercurial – security update
Blake Burkhart discovered an arbitrary code execution flaw in
Mercurial, a distributed version control system, when using the convert
extension on Git repositories with specially crafted names. This flaw in
particular affects automated code conversion services that allow
arbitrary repository names.
ImageMagick Vulnerability
Original release date: May 04, 2016 | Last revised: May 05, 2016
ImageMagick, an open-source image processing software suite, has released versions 7.0.1-1 and 6.9.3-10 to address a vulnerability in previous software versions. Exploitation of this vulnerability may allow an attacker to take control of an affected system.
Users and administrators are encouraged to review the article ImageMagick Security Issue, the Openwall Security Blog, and Vulnerability Note VU#250519 for more information and apply the ImageMagick updates.
This product is provided subject to this Notification and this Privacy & Use policy.
APPLE-SA-2016-05-03-1 Xcode 7.3.1
From: Apple Product Security
Reply to list
APPLE-SA-2016-05-03-1 Xcode 7.3.1 Xcode 7.3.1 is now available and addresses the following: Git Available for: OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: A heap-based buffer overflow issue existed in the handling of filenames. [...]
Bugtraq: Cisco Security Advisory: Cisco FirePOWER System Software Packet Processing Denial of Service Vulnerability
Cisco Security Advisory: Cisco FirePOWER System Software Packet Processing Denial of Service Vulnerability